$ rpki-client -vvf rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft File: aUCPaxygKBZoPM5MCOAEkyUZRLI.mft (raw, json) Hash identifier: bI4ZytmqmQ2A5B3ffjXRVEzwt9bAAU2nOyjcSjwIn28= Subject key identifier: A9:02:C3:58:BC:1A:62:CF:C1:90:46:C1:FF:BD:6D:40:28:AE:50:00 Authority key identifier: 69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 Certificate issuer: /CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Certificate serial: 0A8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft Manifest number: 0A76 Signing time: Sat 18 Oct 2025 20:38:02 +0000 Manifest this update: Sat 18 Oct 2025 20:38:01 +0000 Manifest next update: Sat 25 Oct 2025 20:38:01 +0000 Files and hashes: 1: aUCPaxygKBZoPM5MCOAEkyUZRLI.crl (hash: EnvKzKqoO6E4Hf1nJAeJkXE1nPmkzSo5vjQFpkhZOzk=) 2: 834C938A12C711F09998A234C4F9AE02.roa (hash: M4mfahqMzwmq58j++0Teybq9n4Aqspe3mvfksixkbgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2700 (0xa8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166FC, serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Validity Not Before: Oct 18 20:38:01 2025 GMT Not After : Oct 25 20:38:01 2025 GMT Subject: CN=68f3faa9-3222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:87:d8:b4:a1:4b:9d:39:aa:9b:94:19:4b:c4: 23:62:0c:8e:79:6e:11:cd:80:92:03:50:ef:49:51: 1e:2c:67:fe:97:31:1f:70:16:3d:1b:94:2a:05:17: 63:0f:73:4c:71:04:28:48:79:ee:74:6d:dc:91:72: d1:7a:3c:96:93:66:08:0c:cc:ef:27:48:85:ee:f4: a6:c2:5a:9c:05:5e:64:ac:d9:4b:7a:26:56:e8:91: 1f:d1:42:d6:81:03:32:bb:d8:29:08:40:80:94:59: 2b:b8:f2:93:72:18:39:9d:db:32:d1:12:ae:49:c9: 44:6f:d3:bf:1f:c6:65:b2:bd:24:3e:ad:fa:0c:af: 80:44:a2:b7:73:2e:95:88:54:7d:7a:ac:b9:95:2a: 3a:ae:30:cc:a4:ab:a4:b6:37:3b:af:33:4c:46:01: 79:2a:4f:f0:67:c7:d7:aa:cb:9c:6f:be:3a:71:b3: 29:92:5b:2c:96:dd:e8:46:54:76:16:53:d0:51:60: da:93:ce:4e:61:4e:31:70:50:9a:1c:d7:03:01:83: 22:24:71:c8:88:4c:0d:59:65:32:d3:18:69:ca:18: 4c:a2:e0:70:47:5a:14:f8:e5:01:93:08:68:a9:af: 9f:d0:e1:d2:6f:cc:30:c3:1e:54:88:bf:10:bd:35: 1a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:02:C3:58:BC:1A:62:CF:C1:90:46:C1:FF:BD:6D:40:28:AE:50:00 X509v3 Authority Key Identifier: keyid:69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:08:cc:84:79:78:51:05:25:55:cd:7a:1a:46:a2:8e:9d:5e: 56:c5:eb:b0:d4:32:b9:20:72:1b:3f:50:90:2f:9b:55:03:35: 43:8a:6a:d3:c4:f5:3c:be:27:ea:3b:f7:20:45:c4:19:38:da: 9d:aa:3d:ee:48:a2:4a:0d:7b:05:73:ae:af:28:b7:bc:ca:8d: 6e:73:af:81:fd:ac:10:03:92:5d:77:12:46:05:58:d8:0b:24: 75:93:c7:f7:6a:be:e8:97:8c:80:6d:e4:fb:9c:e5:64:11:56: ed:97:c6:d4:04:6a:40:47:22:8f:6c:3e:61:1b:5c:b5:36:f1: 76:2d:0c:45:55:e3:c1:db:45:c3:a0:9b:cf:8a:ab:0a:c7:85: ad:e6:4f:f3:41:4c:aa:d9:d4:68:d8:03:e1:1b:da:4f:24:de: 93:5a:43:14:27:93:e1:cc:5c:32:75:c7:ea:1a:04:f7:be:a4: 1e:37:4f:2b:3e:21:08:cd:73:ed:f8:f9:d0:44:10:a4:04:05: 28:3b:7b:72:a8:7c:18:e8:41:3c:60:4c:b7:83:1a:e1:77:54: 44:02:dc:fd:f7:96:b5:31:be:8c:23:14:15:a3:d1:af:30:e5: 34:53:75:fd:56:38:d9:4e:ef:26:90:57:01:c6:58:82:bc:0d: ac:a6:5b:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RkMxMTAvBgNVBAUTKDY5NDA4RjZCMUNBMDI4MTY2ODNDQ0U0QzA4RTAwNDkz MjUxOTQ0QjIwHhcNMjUxMDE4MjAzODAxWhcNMjUxMDI1MjAzODAxWjAYMRYwFAYD VQQDEw02OGYzZmFhOS0zMjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxofYtKFLnTmqm5QZS8QjYgyOeW4RzYCSA1DvSVEeLGf+lzEfcBY9G5QqBRdj D3NMcQQoSHnudG3ckXLRejyWk2YIDMzvJ0iF7vSmwlqcBV5krNlLeiZW6JEf0ULW gQMyu9gpCECAlFkruPKTchg5ndsy0RKuSclEb9O/H8Zlsr0kPq36DK+ARKK3cy6V iFR9eqy5lSo6rjDMpKuktjc7rzNMRgF5Kk/wZ8fXqsucb746cbMpklsslt3oRlR2 FlPQUWDak85OYU4xcFCaHNcDAYMiJHHIiEwNWWUy0xhpyhhMouBwR1oU+OUBkwho qa+f0OHSb8wwwx5UiL8QvTUalwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkCw1i8 GmLPwZBGwf+9bUAorlAAMB8GA1UdIwQYMBaAFGlAj2scoCgWaDzOTAjgBJMlGUSy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZGQy9BQjFGNEVDQTcy OUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tCWm9QTTVNQ09BRWt5VVpS TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FVQ1BheHlnS0Jab1BNNU1DT0FFa3lVWlJMSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjZGQy9BQjFGNEVDQTcyOUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tC Wm9QTTVNQ09BRWt5VVpSTEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjCMyEeXhRBSVVzXoaRqKOnV5Wxeuw1DK5IHIbP1CQL5tVAzVDimrT xPU8vifqO/cgRcQZONqdqj3uSKJKDXsFc66vKLe8yo1uc6+B/awQA5JddxJGBVjY CyR1k8f3ar7ol4yAbeT7nOVkEVbtl8bUBGpARyKPbD5hG1y1NvF2LQxFVePB20XD oJvPiqsKx4Wt5k/zQUyq2dRo2APhG9pPJN6TWkMUJ5PhzFwydcfqGgT3vqQeN08r PiEIzXPt+PnQRBCkBAUoO3tyqHwY6EE8YEy3gxrhd1REAtz995a1Mb6MIxQVo9Gv MOU0U3X9VjjZTu8mkFcBxliCvA2spluY -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:09 2025 by rpki-client